Incorrect quoting of command-line arguments allowed remote code execution during a recursive clone in conjunction with SSH URLs. References: https://kernel.googlesource.com/pub/scm/git/git/+/refs/tags/v2.24.1/Documentation/RelNotes/2.14.6.txt CREATE(Triage):(User=admin) CVE-2019-1350 (https://nvd.nist.gov/vuln/detail/CVE-2019-1350)